Privacy Policy

Last updated: May 2026

What the extension sees

Awesome SAML Tracer monitors network requests made by your browser in order to detect and decode SAML SSO messages (SAMLRequest and SAMLResponse). This includes:

• URLs of requests your browser makes
• HTTP request and response headers
• Form data and query parameters that contain SAML payloads

This information is only ever used to display it to you inside the extension. It is never sent anywhere.

Where data is stored

Captured traffic is stored locally on your device using Chrome's built-in chrome.storage.local API. This storage:

• Is private to the extension on your device
• Is not synced to your Google account or any cloud service
• Is automatically cleared when you click the ⊘ Clear button or uninstall the extension
• Holds a maximum of 200 captures at a time (oldest are dropped automatically)

Settings you configure (highlight domains, important headers, and so on) are stored using chrome.storage.sync, which Chrome may sync across your own signed-in devices. No one else can access this data.

What the extension does not do

• Does not transmit any data to any server, including the developer's
• Does not track your browsing history or behavior
• Does not store any data beyond your current session's captures
• Does not access any page content beyond the network requests described above
• Does not use analytics, crash reporting, or any third-party services

Exported files

When you use the Export (⬆) or Report (📄) features, a file is saved to your local Downloads folder. That file stays on your device. The developer has no access to it and no knowledge that you created it.

Permissions explained

Contact

If you have questions about this privacy policy, open an issue on GitHub or reach out via Ko-fi.